Skip to navigation

Security Advisory Moderate: httpd security and bug fix update

Advisory: RHSA-2011:1391-1
Type: Security Advisory
Severity: Moderate
Issued on: 2011-10-20
Last updated on: 2011-10-20
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server EUS (v. 6.1.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2011-3348
CVE-2011-3368

Details

Updated httpd packages that fix two security issues and one bug are now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

The Apache HTTP Server is a popular web server.

It was discovered that the Apache HTTP Server did not properly validate the
request URI for proxied requests. In certain configurations, if a reverse
proxy used the ProxyPassMatch directive, or if it used the RewriteRule
directive with the proxy flag, a remote attacker could make the proxy
connect to an arbitrary server, possibly disclosing sensitive information
from internal web servers not directly accessible to the attacker.
(CVE-2011-3368)

It was discovered that mod_proxy_ajp incorrectly returned an "Internal
Server Error" response when processing certain malformed HTTP requests,
which caused the back-end server to be marked as failed in configurations
where mod_proxy was used in load balancer mode. A remote attacker could
cause mod_proxy to not send requests to back-end AJP (Apache JServ
Protocol) servers for the retry timeout period or until all back-end
servers were marked as failed. (CVE-2011-3348)

Red Hat would like to thank Context Information Security for reporting the
CVE-2011-3368 issue.

This update also fixes the following bug:

* The fix for CVE-2011-3192 provided by the RHSA-2011:1245 update
introduced regressions in the way httpd handled certain Range HTTP header
values. This update corrects those regressions. (BZ#736592)

All httpd users should upgrade to these updated packages, which contain
backported patches to correct these issues. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
httpd-2.2.15-9.el6_1.3.src.rpm
File outdated by:  RHSA-2014:0370
    MD5: a371e5528c070fe5d5090dfc0e2a4225
SHA-256: 4bf36dd33653251f353c0823f61015e3e92a31615c18b8dc53c31d3c3aa447d4
 
IA-32:
httpd-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 743b3172f50792a91d133fee27847f7c
SHA-256: a8e9058fe499614f3664d20131efaa94a94b79bd67e75eb9505c7e71dcc14f69
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: a046b43d5922cbe7dab60f9a97262778
SHA-256: 340493c08b5faa38d32d9306e5ce497a8ff9478dd731db9c45d08adbc8cbe0f8
mod_ssl-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: fd1d9678b217f5e427cdbdd0e2370460
SHA-256: c47324ee8e8b173e1c4e804697ba920015acf340ab52e377330a17ef312c32dc
 
x86_64:
httpd-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 670de542bd4a1f27e754580a19fcfcba
SHA-256: 4aea72fa618286d52f91d2734136e97b84f76e935910c34742d7f29da1ee4333
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-debuginfo-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: ac44e5247feccb8253108ca589a64d9c
SHA-256: 8db2455ef9eebf2c46edbbb26c6ce834cfa8cddc45bf4cc4f66cfdc09edcd2c0
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-devel-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 6fa21d3c11a1a608f1155ee57889c7dd
SHA-256: dad8001fd57356940a35c043d35e8159f2c4ffb41891a5da4257557e2e67dacc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: b46d60be69ae6a2e20f07c02fc417abf
SHA-256: 097c45cd9975f7466f9b7c8513681bf8d9cc3d66c074129be950fadffb634d00
mod_ssl-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 5392514910b6b7283909e2353211630f
SHA-256: cebbebe1ef9d4a58404b416f820be3058fda8de94dd954803dfcc6e5d2d1bcc9
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
httpd-2.2.15-9.el6_1.3.src.rpm
File outdated by:  RHSA-2014:0370
    MD5: a371e5528c070fe5d5090dfc0e2a4225
SHA-256: 4bf36dd33653251f353c0823f61015e3e92a31615c18b8dc53c31d3c3aa447d4
 
x86_64:
httpd-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 670de542bd4a1f27e754580a19fcfcba
SHA-256: 4aea72fa618286d52f91d2734136e97b84f76e935910c34742d7f29da1ee4333
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-debuginfo-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: ac44e5247feccb8253108ca589a64d9c
SHA-256: 8db2455ef9eebf2c46edbbb26c6ce834cfa8cddc45bf4cc4f66cfdc09edcd2c0
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-devel-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 6fa21d3c11a1a608f1155ee57889c7dd
SHA-256: dad8001fd57356940a35c043d35e8159f2c4ffb41891a5da4257557e2e67dacc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: b46d60be69ae6a2e20f07c02fc417abf
SHA-256: 097c45cd9975f7466f9b7c8513681bf8d9cc3d66c074129be950fadffb634d00
mod_ssl-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 5392514910b6b7283909e2353211630f
SHA-256: cebbebe1ef9d4a58404b416f820be3058fda8de94dd954803dfcc6e5d2d1bcc9
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
httpd-2.2.15-9.el6_1.3.src.rpm
File outdated by:  RHSA-2014:0370
    MD5: a371e5528c070fe5d5090dfc0e2a4225
SHA-256: 4bf36dd33653251f353c0823f61015e3e92a31615c18b8dc53c31d3c3aa447d4
 
IA-32:
httpd-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 743b3172f50792a91d133fee27847f7c
SHA-256: a8e9058fe499614f3664d20131efaa94a94b79bd67e75eb9505c7e71dcc14f69
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: a046b43d5922cbe7dab60f9a97262778
SHA-256: 340493c08b5faa38d32d9306e5ce497a8ff9478dd731db9c45d08adbc8cbe0f8
mod_ssl-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: fd1d9678b217f5e427cdbdd0e2370460
SHA-256: c47324ee8e8b173e1c4e804697ba920015acf340ab52e377330a17ef312c32dc
 
PPC:
httpd-2.2.15-9.el6_1.3.ppc64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 050cc48e09f08a2ba0525f356eb9d2be
SHA-256: 63d75b47f4752d1969725860b621817e7d1faf7c829dc23d6ef69b220c2bac22
httpd-debuginfo-2.2.15-9.el6_1.3.ppc.rpm
File outdated by:  RHSA-2014:0370
    MD5: 73dd5d7c5526cf770128d73535095e82
SHA-256: fcceb3b75c517264f5227a6369bafc325ef11d774bdc42dff136eee9ed6f0b50
httpd-debuginfo-2.2.15-9.el6_1.3.ppc64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 2536c648739546d13ca52d902aa57222
SHA-256: e1d3082718a76a40e3d5c42de22e2e108d9f891a622a10dc03ffa46d7dbdcffe
httpd-devel-2.2.15-9.el6_1.3.ppc.rpm
File outdated by:  RHSA-2014:0370
    MD5: 33751229ffeb9ce47dac57029b9d767a
SHA-256: fa07b8052f5ace785fe4c11494abf2f1ea448b78357d07b80176ec2e65dbb56e
httpd-devel-2.2.15-9.el6_1.3.ppc64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0dfce1a1ab42c43bd40a1fd049adfc9a
SHA-256: 456af755477c84df6987367b1d25ee2fcb643a04894752a0ac498c7338caaa04
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.ppc64.rpm
File outdated by:  RHSA-2014:0370
    MD5: b34d9a1296f5d13ec6e1af2384c2ca62
SHA-256: 38f82d58eab85c4ea7869c98dce2b5fc87ba491dfdc728184e860b62507cd84e
mod_ssl-2.2.15-9.el6_1.3.ppc64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1a05e8de3d58787dea50dd7ccfbd1839
SHA-256: dea72dfe086c60f825478ce1c7990e37ed3a7756fd23d470683448388f279d0f
 
s390x:
httpd-2.2.15-9.el6_1.3.s390x.rpm
File outdated by:  RHSA-2014:0370
    MD5: 19df98bcd1558e0e5aa3c877965b7d6c
SHA-256: d40279ad21a6312f7f17abe1c6fa9213c0a33d33f5e08bb93f606ea60dc9cbb8
httpd-debuginfo-2.2.15-9.el6_1.3.s390.rpm
File outdated by:  RHSA-2014:0370
    MD5: 7774d71a2083e251d420e912a2c14b5a
SHA-256: c5f5388f4b8be3cd7d7d8cff67525eeb12e81f3ca54d93affa05d4c10e38b4f7
httpd-debuginfo-2.2.15-9.el6_1.3.s390x.rpm
File outdated by:  RHSA-2014:0370
    MD5: e2cef95ae607d589cc2d9cf38b629e82
SHA-256: 91572903aec5a4001646da8d7c5477734b02ea60c3ed71772c518274c8dabfdd
httpd-devel-2.2.15-9.el6_1.3.s390.rpm
File outdated by:  RHSA-2014:0370
    MD5: b486554d0aef82c5d55b0b39657e1f9e
SHA-256: 0ba2af723e378840a92285ca1cd95342ac917ac74bf13d54fc722f76920134fb
httpd-devel-2.2.15-9.el6_1.3.s390x.rpm
File outdated by:  RHSA-2014:0370
    MD5: bf5894a135864dc25ee941fc97bced32
SHA-256: a3a79657300736f045e914def9decdd8ee3b3c3f494ef83f95e648f5405942cc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.s390x.rpm
File outdated by:  RHSA-2014:0370
    MD5: 4d15a877d8837aceffd59f69d3c38b03
SHA-256: 97f43d052e41bed753f8e39cee96ae403ea68a566d29d671592d80ff043763ef
mod_ssl-2.2.15-9.el6_1.3.s390x.rpm
File outdated by:  RHSA-2014:0370
    MD5: 8f29ed698c8bb2ee10f41205fc225d36
SHA-256: aca9ff2377b30c3663437df315be8226eea59eca5543f8380b18fb2c298b2445
 
x86_64:
httpd-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 670de542bd4a1f27e754580a19fcfcba
SHA-256: 4aea72fa618286d52f91d2734136e97b84f76e935910c34742d7f29da1ee4333
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-debuginfo-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: ac44e5247feccb8253108ca589a64d9c
SHA-256: 8db2455ef9eebf2c46edbbb26c6ce834cfa8cddc45bf4cc4f66cfdc09edcd2c0
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-devel-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 6fa21d3c11a1a608f1155ee57889c7dd
SHA-256: dad8001fd57356940a35c043d35e8159f2c4ffb41891a5da4257557e2e67dacc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: b46d60be69ae6a2e20f07c02fc417abf
SHA-256: 097c45cd9975f7466f9b7c8513681bf8d9cc3d66c074129be950fadffb634d00
mod_ssl-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 5392514910b6b7283909e2353211630f
SHA-256: cebbebe1ef9d4a58404b416f820be3058fda8de94dd954803dfcc6e5d2d1bcc9
 
Red Hat Enterprise Linux Server EUS (v. 6.1.z)

SRPMS:
httpd-2.2.15-9.el6_1.3.src.rpm
File outdated by:  RHSA-2014:0370
    MD5: a371e5528c070fe5d5090dfc0e2a4225
SHA-256: 4bf36dd33653251f353c0823f61015e3e92a31615c18b8dc53c31d3c3aa447d4
 
IA-32:
httpd-2.2.15-9.el6_1.3.i686.rpm     MD5: 743b3172f50792a91d133fee27847f7c
SHA-256: a8e9058fe499614f3664d20131efaa94a94b79bd67e75eb9505c7e71dcc14f69
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm     MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-devel-2.2.15-9.el6_1.3.i686.rpm     MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm     MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.i686.rpm     MD5: a046b43d5922cbe7dab60f9a97262778
SHA-256: 340493c08b5faa38d32d9306e5ce497a8ff9478dd731db9c45d08adbc8cbe0f8
mod_ssl-2.2.15-9.el6_1.3.i686.rpm     MD5: fd1d9678b217f5e427cdbdd0e2370460
SHA-256: c47324ee8e8b173e1c4e804697ba920015acf340ab52e377330a17ef312c32dc
 
PPC:
httpd-2.2.15-9.el6_1.3.ppc64.rpm     MD5: 050cc48e09f08a2ba0525f356eb9d2be
SHA-256: 63d75b47f4752d1969725860b621817e7d1faf7c829dc23d6ef69b220c2bac22
httpd-debuginfo-2.2.15-9.el6_1.3.ppc.rpm     MD5: 73dd5d7c5526cf770128d73535095e82
SHA-256: fcceb3b75c517264f5227a6369bafc325ef11d774bdc42dff136eee9ed6f0b50
httpd-debuginfo-2.2.15-9.el6_1.3.ppc64.rpm     MD5: 2536c648739546d13ca52d902aa57222
SHA-256: e1d3082718a76a40e3d5c42de22e2e108d9f891a622a10dc03ffa46d7dbdcffe
httpd-devel-2.2.15-9.el6_1.3.ppc.rpm     MD5: 33751229ffeb9ce47dac57029b9d767a
SHA-256: fa07b8052f5ace785fe4c11494abf2f1ea448b78357d07b80176ec2e65dbb56e
httpd-devel-2.2.15-9.el6_1.3.ppc64.rpm     MD5: 0dfce1a1ab42c43bd40a1fd049adfc9a
SHA-256: 456af755477c84df6987367b1d25ee2fcb643a04894752a0ac498c7338caaa04
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm     MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.ppc64.rpm     MD5: b34d9a1296f5d13ec6e1af2384c2ca62
SHA-256: 38f82d58eab85c4ea7869c98dce2b5fc87ba491dfdc728184e860b62507cd84e
mod_ssl-2.2.15-9.el6_1.3.ppc64.rpm     MD5: 1a05e8de3d58787dea50dd7ccfbd1839
SHA-256: dea72dfe086c60f825478ce1c7990e37ed3a7756fd23d470683448388f279d0f
 
s390x:
httpd-2.2.15-9.el6_1.3.s390x.rpm     MD5: 19df98bcd1558e0e5aa3c877965b7d6c
SHA-256: d40279ad21a6312f7f17abe1c6fa9213c0a33d33f5e08bb93f606ea60dc9cbb8
httpd-debuginfo-2.2.15-9.el6_1.3.s390.rpm     MD5: 7774d71a2083e251d420e912a2c14b5a
SHA-256: c5f5388f4b8be3cd7d7d8cff67525eeb12e81f3ca54d93affa05d4c10e38b4f7
httpd-debuginfo-2.2.15-9.el6_1.3.s390x.rpm     MD5: e2cef95ae607d589cc2d9cf38b629e82
SHA-256: 91572903aec5a4001646da8d7c5477734b02ea60c3ed71772c518274c8dabfdd
httpd-devel-2.2.15-9.el6_1.3.s390.rpm     MD5: b486554d0aef82c5d55b0b39657e1f9e
SHA-256: 0ba2af723e378840a92285ca1cd95342ac917ac74bf13d54fc722f76920134fb
httpd-devel-2.2.15-9.el6_1.3.s390x.rpm     MD5: bf5894a135864dc25ee941fc97bced32
SHA-256: a3a79657300736f045e914def9decdd8ee3b3c3f494ef83f95e648f5405942cc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm     MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.s390x.rpm     MD5: 4d15a877d8837aceffd59f69d3c38b03
SHA-256: 97f43d052e41bed753f8e39cee96ae403ea68a566d29d671592d80ff043763ef
mod_ssl-2.2.15-9.el6_1.3.s390x.rpm     MD5: 8f29ed698c8bb2ee10f41205fc225d36
SHA-256: aca9ff2377b30c3663437df315be8226eea59eca5543f8380b18fb2c298b2445
 
x86_64:
httpd-2.2.15-9.el6_1.3.x86_64.rpm     MD5: 670de542bd4a1f27e754580a19fcfcba
SHA-256: 4aea72fa618286d52f91d2734136e97b84f76e935910c34742d7f29da1ee4333
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm     MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-debuginfo-2.2.15-9.el6_1.3.x86_64.rpm     MD5: ac44e5247feccb8253108ca589a64d9c
SHA-256: 8db2455ef9eebf2c46edbbb26c6ce834cfa8cddc45bf4cc4f66cfdc09edcd2c0
httpd-devel-2.2.15-9.el6_1.3.i686.rpm     MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-devel-2.2.15-9.el6_1.3.x86_64.rpm     MD5: 6fa21d3c11a1a608f1155ee57889c7dd
SHA-256: dad8001fd57356940a35c043d35e8159f2c4ffb41891a5da4257557e2e67dacc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm     MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.x86_64.rpm     MD5: b46d60be69ae6a2e20f07c02fc417abf
SHA-256: 097c45cd9975f7466f9b7c8513681bf8d9cc3d66c074129be950fadffb634d00
mod_ssl-2.2.15-9.el6_1.3.x86_64.rpm     MD5: 5392514910b6b7283909e2353211630f
SHA-256: cebbebe1ef9d4a58404b416f820be3058fda8de94dd954803dfcc6e5d2d1bcc9
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
httpd-2.2.15-9.el6_1.3.src.rpm
File outdated by:  RHSA-2014:0370
    MD5: a371e5528c070fe5d5090dfc0e2a4225
SHA-256: 4bf36dd33653251f353c0823f61015e3e92a31615c18b8dc53c31d3c3aa447d4
 
IA-32:
httpd-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 743b3172f50792a91d133fee27847f7c
SHA-256: a8e9058fe499614f3664d20131efaa94a94b79bd67e75eb9505c7e71dcc14f69
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: a046b43d5922cbe7dab60f9a97262778
SHA-256: 340493c08b5faa38d32d9306e5ce497a8ff9478dd731db9c45d08adbc8cbe0f8
mod_ssl-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: fd1d9678b217f5e427cdbdd0e2370460
SHA-256: c47324ee8e8b173e1c4e804697ba920015acf340ab52e377330a17ef312c32dc
 
x86_64:
httpd-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 670de542bd4a1f27e754580a19fcfcba
SHA-256: 4aea72fa618286d52f91d2734136e97b84f76e935910c34742d7f29da1ee4333
httpd-debuginfo-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 0ab151257655236a771e064fa123807c
SHA-256: e5c18f5feaf7816c23e098b5a2ab0734f07343ddd0f76db5465619a508df5370
httpd-debuginfo-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: ac44e5247feccb8253108ca589a64d9c
SHA-256: 8db2455ef9eebf2c46edbbb26c6ce834cfa8cddc45bf4cc4f66cfdc09edcd2c0
httpd-devel-2.2.15-9.el6_1.3.i686.rpm
File outdated by:  RHSA-2014:0370
    MD5: 723badeb9e692a693ac419be7192b927
SHA-256: fc7bcf978672c640972651f957aa86db370c80b63e66d85ac2fff64387b5a31c
httpd-devel-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 6fa21d3c11a1a608f1155ee57889c7dd
SHA-256: dad8001fd57356940a35c043d35e8159f2c4ffb41891a5da4257557e2e67dacc
httpd-manual-2.2.15-9.el6_1.3.noarch.rpm
File outdated by:  RHSA-2014:0370
    MD5: 1c924727dd56df265ffd0cc47a60959f
SHA-256: 1e09695995a05002a85c75384bc442d206928a614994a3d31372f397a9b1483e
httpd-tools-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: b46d60be69ae6a2e20f07c02fc417abf
SHA-256: 097c45cd9975f7466f9b7c8513681bf8d9cc3d66c074129be950fadffb634d00
mod_ssl-2.2.15-9.el6_1.3.x86_64.rpm
File outdated by:  RHSA-2014:0370
    MD5: 5392514910b6b7283909e2353211630f
SHA-256: cebbebe1ef9d4a58404b416f820be3058fda8de94dd954803dfcc6e5d2d1bcc9
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

736592 - httpd: RHSA-2011:1245 regressions [rhel-6]
736690 - CVE-2011-3348 httpd: mod_proxy_ajp remote temporary DoS
740045 - CVE-2011-3368 httpd: reverse web proxy vulnerability


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/